Sqreen

Real-time security monitoring and protection made easy Starting at $0/mo.

Easily monitor and protect your web applications Track security anomalies and events Build security workflows into your app Detect attackers early Remediate vulnerabilities effortlessly
Improve your Heroku Security

Mitigate security threats by easily enabling security plugins into your app. Customize or use pre-built responses. Secure Heroku apps.

Get full visibility into app security

Monitor, troubleshoot, and optimize application security using network and in-app security signals

Block attacks in real-time

Enable the protection mode to block attacks ranging from OWASP Top 10, Account Takeovers, Brute force attacks, bad bots and more. Secure your app against hackers.

Intrusion Detection

Spot the users attacking your app or API. Detect attackers, Tor usage, suspicious logins, known malicious IPs or users, geo-location anomalies and more.

Stop worrying about security patches

Identify libraries putting your app at risk. Sqreen lets you know when new vulnerable dependencies are detected in your app.

Secure your customers

Prevent customer data from being leaked. Detect account takeovers or brute force attempts. Flag simultaneous connections, shared accounts or unusual activities.

Frictionless vulnerability remediation

Get the full context of an attack. Developers can easily fix vulnerabilities using the stack traces and payload of attacks. Improve the security of your app,

Prioritize your security efforts

Only get notified when important security events occur. Get severity levels on all the security anomalies happening in your app.

Easily enforce security headers

Enable security headers in just a couple of clicks. No more hassle configuring a Content Security Policy (CSP), Sqreen does it for you.

Integrates in minutes

Get protected easily by installing Sqreen in just a couple of minutes as a standard module in the application. It doesn’t require any configuration or maintenance.

Integrate your favorite tools

Integrate with Slack, New Relic Insights, Webhooks or Emails.

Meet your compliance requirements

Sqreen helps you meet your compliance requirements on OWASP Top 10, SOC2, GDPR, PCI and more

SOC2 and GDPR Compliance

Save time in security questionnaires and ease compliance to SOC2, PCi, GDPR, OWASP top 10 and more

Region Availability

The available application locations for this add-on are shown below, and depend on whether the application is deployed to a Common Runtime region or Private Space. Learn More

  • Common Runtime
  • Private Spaces
Region Available
United States Available
Europe Available
Region Available Installable in Space
Virginia Available
Oregon Available
Frankfurt Available
Tokyo Available
Sydney Available
Dublin Available

Plans & Pricing

Need a larger plan? Let our customer success team help! Learn more.
    • Real-time security dashboards
    • Application vulnerabilities
    • Attack logs
    • Security Report
    • Security Flow Map
    • Attacker timeline
    • Account Takeover Protection
    • In-App Web Application Firewall (WAF)
    • Runtime Application Self-Protection (RASP)
    • Built-in security automation
    • Advanced configurations
    • Advanced protections
    • Smart Content Security Policy (CSP)
    • Unbranded blocking page
    • Number of apps 1
    • Monitored Requests / month 1 million
    • Automation events 100,000
    • Data Retention 1 day
    • Number of seats 1
    • Basic Team Permissions
    • Advanced Team Permissions
    • Audit logs
    • Premium support and SLAs
    • Managed SOC team
    • Slack Integration
    • Webhooks
    • Splunk and SIEM integrations
    • Real-time security dashboards
    • Application vulnerabilities
    • Attack logs
    • Security Report
    • Security Flow Map
    • Attacker timeline
    • Account Takeover Protection
    • In-App Web Application Firewall (WAF)
    • Runtime Application Self-Protection (RASP)
    • Built-in security automation
    • Advanced configurations
    • Advanced protections
    • Smart Content Security Policy (CSP)
    • Unbranded blocking page
    • Number of apps 1
    • Monitored Requests / month up to 10 million
    • Automation events 1 million
    • Data Retention 30 days
    • Number of seats 3
    • Basic Team Permissions
    • Advanced Team Permissions
    • Audit logs
    • Premium support and SLAs
    • Managed SOC team
    • Slack Integration
    • Webhooks
    • Splunk and SIEM integrations
    • Real-time security dashboards
    • Application vulnerabilities
    • Attack logs
    • Security Report
    • Security Flow Map
    • Attacker timeline
    • Account Takeover Protection
    • In-App Web Application Firewall (WAF)
    • Runtime Application Self-Protection (RASP)
    • Built-in security automation
    • Advanced configurations
    • Advanced protections
    • Smart Content Security Policy (CSP)
    • Unbranded blocking page
    • Number of apps 1
    • Monitored Requests / month up to 20 million
    • Automation events 1 million
    • Data Retention 30 days
    • Number of seats 5
    • Basic Team Permissions
    • Advanced Team Permissions
    • Audit logs
    • Premium support and SLAs
    • Managed SOC team
    • Slack Integration
    • Webhooks
    • Splunk and SIEM integrations
Install Sqreen
heroku addons:create sqreen

To provision, copy the snippet into your CLI or use the install button above.

Sqreen Documentation